Cryptographic Weakness in IBM Verify Identity and Security Access Products
CVE-2026-5926

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Verify Identity Access Container; Security Verify Access Container; Verify Identity Access; Security Verify Access
Vendor: CVE Published:; 22 April 2026

What is CVE-2026-5926?

The identified vulnerability occurs in several IBM Verify Identity Access and IBM Security Verify Access products, where the implementation of cryptographic algorithms does not meet the required security standards. This deficiency may enable attackers to decrypt sensitive information, potentially leading to unauthorized access and compromise of secure data. Users of impacted versions of these products should apply appropriate patches to mitigate the risks associated with this vulnerability.

Affected Version(s)

Security Verify Access 10.0 <= 10.0.9.1

Security Verify Access Container 10.0 <= 10.0.9.1

Verify Identity Access 11.0 <= 11.0.2

References

https://www.ibm.com/support/pages/node/7269372

vendor-advisorypatch

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 22, 2026
Vulnerability Reserved
Apr 8, 2026

CVE-2026-5926 Data

JSON